State Drift Detection using Terraform
Payam Moghaddam

Interesting system and concept — there are a few products in the market that can do this, though your novel use of Terraform does help shine a light on the need for general reverse engineering of systems and comparisons in particular.

Note I’m not sure Terraform will fix stuff that’s been added as I don’t think it assumes it runs everything, so if I add a VM or a SG; not sure it’ll tell you as the plan should be empty — would only be non-empty for things it built and controls. Would also want to ensure it catches changes to things you didn’t specify in your original spec and probably covered by AWS defaults (or maybe Terraform defaults).

Still very cool.

